SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows PHAR deserialization that can lead to remote code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-28T16:25:21
Updated: 2024-08-04T04:54:30.929Z
Reserved: 2021-12-27T00:00:00
Link: CVE-2021-45899
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-28T17:15:15.177
Modified: 2022-02-02T18:01:55.950
Link: CVE-2021-45899
Redhat
No data.